Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/3BSfUbSupnvmGslLaWAMLcFldcY.roa
File: 3BSfUbSupnvmGslLaWAMLcFldcY.roa (raw, json)
Hash identifier: XEA8NOsSE3HS2sCA1XyU7u8+sE99jaVMFoJY7zJwoR0=
Subject key identifier: DC:14:9F:51:B4:AE:A6:7B:E6:1A:C9:4B:69:60:0C:2D:C1:65:75:C6
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 01922CF507B4951F06B79DC50F77FD83C379
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/3BSfUbSupnvmGslLaWAMLcFldcY.roa
Signing time: Thu 26 Sep 2024 06:11:48 +0000
ROA not before: Thu 26 Sep 2024 06:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.95.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 09:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2c:f5:07:b4:95:1f:06:b7:9d:c5:0f:77:fd:83:c3:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Sep 26 06:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc149f51b4aea67be61ac94b69600c2dc16575c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:95:8f:5d:c0:a5:ff:18:90:87:c1:96:d4:8b:
89:77:46:6d:a0:c3:d8:33:78:74:6e:20:aa:8a:a0:
6d:c4:78:75:cd:85:b2:ca:8c:a4:44:f3:e6:7c:cb:
c4:81:df:ba:d5:fd:c4:41:34:8e:8e:3e:34:a7:e2:
21:8e:6c:1d:12:e5:a9:f7:8f:3f:df:52:a6:88:fd:
a4:45:bc:fb:5b:a9:39:f6:af:d0:53:6c:13:7c:e9:
3c:d6:fc:17:da:e0:40:32:8c:a7:5e:45:b0:16:3f:
7d:b0:d5:2a:99:2d:15:b9:68:d1:dd:81:ec:bb:31:
6d:de:83:25:a0:f6:b7:04:9b:3b:73:2c:51:ff:5a:
a0:24:79:fe:ac:49:d3:6c:f8:d2:48:6d:66:df:98:
f7:10:6c:0b:a4:5b:28:1d:93:c3:35:95:f9:24:0a:
df:49:bd:fb:f8:98:cf:a0:3a:b1:21:25:85:cc:f5:
81:35:29:6d:c7:2a:cd:ea:5b:74:30:64:a1:ea:79:
91:4d:7d:58:be:16:09:f0:00:ef:7c:ad:9b:90:34:
03:96:67:b5:86:2f:21:9b:72:e3:21:b1:85:39:04:
4d:16:da:8a:04:e6:e5:11:a9:25:67:46:10:53:96:
58:bd:a1:65:06:68:f7:d2:f7:21:e7:95:94:1b:20:
38:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:14:9F:51:B4:AE:A6:7B:E6:1A:C9:4B:69:60:0C:2D:C1:65:75:C6
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/3BSfUbSupnvmGslLaWAMLcFldcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.69.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:17:7e:94:42:87:af:9b:29:c6:9c:8c:e9:1b:e8:b1:64:8a:
56:50:e5:70:27:f6:7a:18:73:18:dc:f5:a7:04:97:fd:61:a6:
04:bf:81:c5:98:47:93:c6:74:61:78:98:76:a7:69:24:10:67:
71:76:40:77:c3:51:ac:35:77:e1:a8:bd:30:33:e7:30:7a:af:
99:0d:61:2e:6f:15:41:df:e8:57:62:d7:89:58:4d:69:ea:16:
7a:d4:32:64:ab:61:75:ac:b1:8b:98:e1:29:ee:76:54:61:b0:
5d:80:75:ae:fe:f7:b3:43:90:de:2c:6b:f9:f6:e4:48:2f:a6:
5e:8c:54:a8:96:a3:a7:08:4b:7e:15:0a:ff:b9:d9:7d:9f:d9:
61:e4:45:bf:a4:61:71:af:32:88:69:9f:52:14:19:f1:e9:ca:
ac:b0:c0:0e:f1:be:29:d7:32:b3:08:ee:09:87:29:86:d5:43:
04:b9:fd:04:46:1d:20:27:52:b1:88:78:a1:d8:29:c5:31:03:
3e:2c:e7:c5:52:e8:b1:40:f4:c1:4c:38:bf:37:a6:32:0e:29:
5d:7b:21:a7:27:d0:3a:18:90:ac:91:c4:9a:30:76:4f:21:cb:
c4:ad:18:ae:54:8d:3d:d8:a1:1f:13:2a:3c:29:09:3b:72:37:
05:14:35:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 12:20:05 2024 by rpki-client on console-ams.rpki-client.org